Principal Information Security Engineer

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we are helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Mastercard is seeking a Principal Information Security Engineer to support Mastercard's global Real Time Payments (RTP) platforms. This role is ideal for a security leader who thrives in fast moving, high availability environments and is passionate about building secure, scalable, and resilient payment ecosystems. You will drive the security strategy for RTPI, partnering closely with engineering, product, and global business teams to ensure our real time payment services meet the highest standards of security, compliance, and customer trust. You will influence architecture, guide security-by-design practices, and help shape the future of Mastercard's international payment capabilities.

As a Principal Information Security Engineer supporting Real Time Payments International, you will:

• Leadership & Influence
  • Apply deep technical expertise to mentor and develop junior engineers and security practitioners.
  • Provide input into performance evaluations for team members and emerging talent.
  • Serve as a trusted advisor to engineering and business leaders across RTPI programs.
• Security Architecture & Strategy
  • Influence and implement security requirements, standards, and architectural patterns for large scale, real time payment platforms.
  • Define platform level security architecture and drive execution of long term security strategy for RTPI.
  • Lead threat modelling, risk assessments, and security design reviews for high velocity, high availability systems.
• Engineering & Delivery
  • Support the design, testing, and implementation of complex security solutions aligned with regulatory, operational, and customer requirements.
  • Identify risks and propose compensating controls tailored to real time transaction flows and cross border payment environments.
  • Partner with engineering teams to embed security into CI/CD pipelines, APIs, cloud services, and real time transaction processing components.
• Stakeholder Engagement
  • Build and maintain strong relationships with business owners, product teams, engineers, project managers, customers, and senior leadership.
  • Translate security concepts into actionable guidance for diverse technical and non-technical audiences.
  • Represent Corporate Security in global RTP initiatives, regulatory discussions, and cross functional working groups.

You are an experienced security leader with a passion for enabling secure, real time financial services. You bring:

• Technical & Leadership Experience
  • Undergraduate degree preferably in computer science/information security or significant work experience in information security disciplines.
  • CISSP/CISM or industry recognised security certification desired.
  • Extensive IT experience demonstrating thought leadership and cross functional influence.
  • Proven success enabling business outcomes through strong technical decision making.
  • Experience leading project teams and collaborating with business partners, vendors, and consulting organisations.
  • Excellent communication skills, with the ability to influence, negotiate, and drive alignment across global teams.
• Security Engineering Expertise
  • Strong background in information security engineering, including risk identification and compensating control design.
  • Experience adapting security programs such as Zero Trust to evolving technologies and threat landscapes.
  • Hands on experience improving security domain areas (e.g., authentication, access control, secure architecture) using metrics and customer feedback.
  • Experience supporting or securing Critical National Infrastructure (CNI), particularly within financial services or payment systems, is highly beneficial.
• Risk & Compliance Framework Expertise
  • Demonstrated experience working with risk based security and compliance frameworks, including SOC 2, ISAE 3000, PCI DSS, DORA, and the Cyber Risk Institute (CRI) profiles, as well as other relevant regulatory or industry standards.
  • Ability to interpret, apply, and operationalise framework requirements within complex, high availability technology environments such as real time payment systems.
  • Experience collaborating with audit, compliance, and regulatory teams to ensure alignment between security controls, business processes, and external obligations.
  • Proven capability to assess control effectiveness, identify gaps, and drive remediation strategies that balance security, operational efficiency, and business needs.
  • Strong understanding of how global regulatory expectations and CRI-aligned frameworks influence security architecture, risk management, and platform design.

Every person working for, or on behalf of, Mastercard is responsible for information security. The successful candidate must:

• Abide by Mastercard's security policies and practices;
• Ensure the confidentiality and integrity of information accessed;
• Report any suspected security violations or breaches;
• Complete all mandatory security training as required.